rbg_8c_source.html

/*

 * Copyright (C) 2012 Michael Brown <mbrown@fensystems.co.uk>.

 *

 * This program is free software; you can redistribute it and/or

 * modify it under the terms of the GNU General Public License as

 * published by the Free Software Foundation; either version 2 of the

 * License, or any later version.

 *

 * This program is distributed in the hope that it will be useful, but

 * WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

 * General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program; if not, write to the Free Software

 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA

 * 02110-1301, USA.

 *

 * You can also choose to distribute this program under the terms of

 * the Unmodified Binary Distribution Licence (as given in the file

 * COPYING.UBDL), provided that you have satisfied its requirements.

 *

 * Alternatively, you may distribute this code in source or binary

 * form, with or without modification, provided that the following

 * conditions are met:

 *

 *  1. Redistributions of source code must retain the above copyright

 *     notice, this list of conditions and the above disclaimer.

 *

 *  2. Redistributions in binary form must reproduce the above

 *     copyright notice, this list of conditions and the above

 *     disclaimer in the documentation and/or other materials provided

 *     with the distribution.

 */


FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL );

FILE_SECBOOT ( PERMITTED );


/** @file

 *

 * RBG mechanism

 *

 * This mechanism is designed to comply with ANS X9.82 Part 4 (April

 * 2011 Draft) Section 10.  This standard is unfortunately not freely

 * available.

 *

 * The chosen RBG design is that of a DRBG with a live entropy source

 * with no conditioning function.  Only a single security strength is

 * supported.  No seedfile is used since there may be no non-volatile

 * storage available.  The system UUID is used as the personalisation

 * string.

 */


#include <stdint.h>

#include <string.h>

#include <ipxe/init.h>

#include <ipxe/settings.h>

#include <ipxe/uuid.h>

#include <ipxe/crypto.h>

#include <ipxe/drbg.h>

#include <ipxe/rbg.h>


/** The RBG */

struct random_bit_generator rbg;


/**

 * Start up RBG

 *

 * @ret rc              Return status code

 *

 * This is the RBG_Startup function defined in ANS X9.82 Part 4 (April

 * 2011 Draft) Section 9.1.2.2.

 */


static int rbg_startup ( void ) {

        union uuid uuid;

        int len;

        int rc;


        /* Record that startup has been attempted (even if unsuccessful) */

        rbg.started = 1;


        /* Try to obtain system UUID for use as personalisation

         * string, in accordance with ANS X9.82 Part 3-2007 Section

         * 8.5.2.  If no UUID is available, proceed without a

         * personalisation string.

         */

        if ( ( len = fetch_uuid_setting ( NULL, &uuid_setting, &uuid ) ) < 0 ) {

                rc = len;

                DBGC ( &rbg, "RBG could not fetch personalisation string: "

                       "%s\n", strerror ( rc ) );

                len = 0;

        }


        /* Instantiate DRBG */

        if ( ( rc = drbg_instantiate ( &rbg.state, &uuid, len ) ) != 0 ) {

                DBGC ( &rbg, "RBG could not instantiate DRBG: %s\n",

                       strerror ( rc ) );

                return rc;

        }


        return 0;

}


/**

 * Generate bits using RBG

 *

 * @v additional        Additional input

 * @v additional_len    Length of additional input

 * @v prediction_resist Prediction resistance is required

 * @v data              Output buffer

 * @v len               Length of output buffer

 * @ret rc              Return status code

 *

 * This is the RBG_Generate function defined in ANS X9.82 Part 4

 * (April 2011 Draft) Section 9.1.2.2.

 */


int rbg_generate ( const void *additional, size_t additional_len,

                   int prediction_resist, void *data, size_t len ) {


        /* Attempt startup, if not already attempted */

        if ( ! rbg.started )

                rbg_startup();


        /* Generate bits.  The DRBG will itself return an error if it

         * is not valid (e.g. due to an instantiation failure).

         */

        return drbg_generate ( &rbg.state, additional, additional_len,

                               prediction_resist, data, len );

}


/**

 * Shut down RBG

 *

 */


static void rbg_shutdown ( void ) {


        /* Uninstantiate DRBG */

        drbg_uninstantiate ( &rbg.state );


        /* Clear startup attempted flag */

        rbg.started = 0;

}


/** RBG startup function */


static void rbg_startup_fn ( void ) {


        /* Start up RBG (if not already started on demand).  There is

         * no way to report an error at this stage, but a failed

         * startup will result in an invalid DRBG that refuses to

         * generate bits.

         */

        if ( ! rbg.started )

                rbg_startup();

}


/** RBG shutdown function */


static void rbg_shutdown_fn ( int booting __unused ) {


        /* Shut down RBG */

        rbg_shutdown();

}


/** RBG startup table entry */


struct startup_fn startup_rbg __startup_fn ( STARTUP_NORMAL ) = {

        .name = "rbg",

        .startup = rbg_startup_fn,

        .shutdown = rbg_shutdown_fn,

};


NULL
#define NULL
NULL pointer (VOID *)
Definition Base.h:322

rc
struct arbelprm_rc_send_wqe rc
Definition arbel.h:3

drbg_uninstantiate
void drbg_uninstantiate(struct drbg_state *state)
Uninstantiate DRBG.
Definition drbg.c:424

drbg_instantiate
int drbg_instantiate(struct drbg_state *state, const void *personal, size_t personal_len)
Instantiate DRBG.
Definition drbg.c:79

drbg_generate
int drbg_generate(struct drbg_state *state, const void *additional, size_t additional_len, int prediction_resist, void *data, size_t len)
Generate pseudorandom bits using DRBG.
Definition drbg.c:284

drbg.h
DRBG mechanism.

len
ring len
Length.
Definition dwmac.h:226

data
uint8_t data[48]
Additional event data.
Definition ena.h:11

__unused
#define __unused
Declare a variable or data structure as unused.
Definition compiler.h:573

DBGC
#define DBGC(...)
Definition compiler.h:505

FILE_LICENCE
#define FILE_LICENCE(_licence)
Declare a particular licence as applying to a file.
Definition compiler.h:896

FILE_SECBOOT
#define FILE_SECBOOT(_status)
Declare a file's UEFI Secure Boot permission status.
Definition compiler.h:926

STARTUP_NORMAL
#define STARTUP_NORMAL
Normal startup.
Definition init.h:65

crypto.h
Cryptographic API.

settings.h
Configuration settings.

stdint.h

string.h
String functions.

init.h

__startup_fn
#define __startup_fn(startup_order)
Declare a startup/shutdown function.
Definition init.h:53

rbg_generate
int rbg_generate(const void *additional, size_t additional_len, int prediction_resist, void *data, size_t len)
Generate bits using RBG.
Definition rbg.c:117

rbg_startup_fn
static void rbg_startup_fn(void)
RBG startup function.
Definition rbg.c:145

rbg
struct random_bit_generator rbg
The RBG.
Definition rbg.c:64

rbg_shutdown
static void rbg_shutdown(void)
Shut down RBG.
Definition rbg.c:135

rbg_shutdown_fn
static void rbg_shutdown_fn(int booting __unused)
RBG shutdown function.
Definition rbg.c:157

rbg_startup
static int rbg_startup(void)
Start up RBG.
Definition rbg.c:74

rbg.h
RBG mechanism.

additional
uint16_t additional
Additional sense code and qualifier.
Definition scsi.h:13

fetch_uuid_setting
int fetch_uuid_setting(struct settings *settings, const struct setting *setting, union uuid *uuid)
Fetch value of UUID setting.
Definition settings.c:1085

strerror
char * strerror(int errno)
Retrieve string representation of error number.
Definition strerror.c:79

random_bit_generator
An RBG.
Definition rbg.h:17

startup_fn
A startup/shutdown function.
Definition init.h:43

uuid
A universally unique ID.
Definition uuid.h:16

uuid.h
Universally unique IDs.